Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/5vxEtmI8CG_guRYqb63ccqS2c3g.roa
File: 5vxEtmI8CG_guRYqb63ccqS2c3g.roa (raw, json)
Hash identifier: Pbok2ssvJdD3IFCAPzVr75qCk8Sbw8QYLJdq0sgemR8=
Subject key identifier: E6:FC:44:B6:62:3C:08:6F:E0:B9:16:2A:6F:AD:DC:72:A4:B6:73:78
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 75D6DD
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/5vxEtmI8CG_guRYqb63ccqS2c3g.roa
Signing time: Sat 01 Jan 2022 03:51:52 +0000
ROA not before: Sat 01 Jan 2022 03:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7722717 (0x75d6dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Jan 1 03:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6fc44b6623c086fe0b9162a6faddc72a4b67378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:04:35:f5:7e:3b:8d:a3:8a:f7:7c:dc:6a:16:
a8:9d:cf:c2:2a:81:31:bf:d1:2f:d2:bf:88:b6:87:
93:1b:1a:0b:62:52:8e:e8:1b:21:e8:ed:e7:e3:84:
ce:b6:e1:cf:b0:eb:d3:84:dd:08:71:8d:7b:54:fd:
bf:3b:f5:9c:6d:a8:05:f5:cd:24:ad:5d:c7:1e:ec:
5b:26:21:4b:3d:86:48:8e:85:d2:88:d3:19:94:6a:
12:11:69:de:b6:b5:92:e9:a8:f0:85:31:48:5c:2a:
81:a1:64:cb:4e:62:9d:60:47:83:ca:06:fd:c3:1f:
e2:e5:fd:be:0c:b7:51:0b:47:e0:71:dd:51:13:b7:
88:90:9b:4f:e2:9a:e8:be:cf:4c:38:c4:a1:2f:52:
0c:98:d2:22:37:68:24:cd:f8:65:cb:d2:21:9e:bb:
07:ca:7b:c0:58:62:e3:b4:58:52:4c:fd:6c:45:ea:
16:1f:c2:5a:bf:3c:16:de:b5:dd:58:34:97:5b:13:
27:09:77:f1:c1:8e:66:ce:db:ce:d9:8c:5c:59:91:
df:cf:8a:c3:9a:bf:9d:96:85:56:7f:e5:4f:a4:93:
f8:e7:77:d3:f3:7e:94:d9:5c:d1:98:c5:92:39:20:
5e:69:fc:6d:00:51:77:4b:95:7a:02:36:13:5c:de:
d1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FC:44:B6:62:3C:08:6F:E0:B9:16:2A:6F:AD:DC:72:A4:B6:73:78
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/5vxEtmI8CG_guRYqb63ccqS2c3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:1d:26:5a:90:15:23:a5:ed:52:5c:d2:c5:9b:a2:fd:1e:1f:
38:af:2e:c6:8d:9b:6f:29:4b:98:9e:4f:46:30:3f:16:d0:25:
35:7d:30:32:be:12:a9:26:ad:38:5a:d3:35:43:42:e2:d0:54:
32:66:96:26:c6:4f:78:88:c3:32:c4:17:56:e1:9d:2a:ad:6e:
a5:cc:e3:51:2c:f9:73:e9:1a:55:c3:e0:bc:b0:d8:67:08:71:
03:c8:25:b6:c5:1a:f5:da:6b:ad:5c:8a:6a:6e:83:04:5e:11:
bf:61:82:85:9b:2d:0e:c1:0e:ed:6c:6c:ac:92:10:ef:28:17:
12:d7:3e:60:2d:11:f4:2c:e2:fe:57:e1:45:8f:7b:09:90:b2:
7b:87:e7:f0:d8:6e:3e:89:de:53:1d:5d:77:7c:4b:ed:c5:a4:
04:9b:36:f1:16:cd:d3:89:2d:ca:07:bb:5a:b3:fc:20:4b:8e:
9d:d3:40:d2:ab:f6:0f:98:24:d8:b2:6a:a2:df:16:79:27:f8:
fe:52:b4:05:c7:1e:6d:d0:45:2d:79:2d:9d:cf:8b:90:d4:2b:
47:fa:a0:d7:6b:9f:69:c6:fb:bc:3e:6e:f5:da:60:61:26:ea:
6b:ca:9d:2f:de:ab:82:ee:cb:d5:6b:dd:74:ce:08:69:0a:f1:
e3:c0:d5:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:15 2023 by rpki-client on console-ams.rpki-client.org